{
"rule_to_cwes": {
"API00-C": [
"CWE-20",
"CWE-476"
],
"API04-C": [
"CWE-754"
],
"API07-C": [
"CWE-192",
"CWE-227",
"CWE-590",
"CWE-686",
"CWE-704",
"CWE-761",
"CWE-762",
"CWE-843"
],
"ARR00-C": [
"CWE-119",
"CWE-123",
"CWE-125",
"CWE-129"
],
"ARR01-C": [
"CWE-467",
"CWE-569",
"CWE-783"
],
"ARR02-C": [
"CWE-665"
],
"ARR30-C": [
"CWE-119",
"CWE-121",
"CWE-122",
"CWE-124",
"CWE-126",
"CWE-127",
"CWE-129",
"CWE-123",
"CWE-125",
"CWE-394",
"CWE-120",
"CWE-20",
"CWE-687",
"CWE-786",
"CWE-789"
],
"ARR32-C": [
"CWE-758",
"CWE-129",
"CWE-188",
"CWE-119"
],
"ARR36-C": [
"CWE-469"
],
"ARR38-C": [
"CWE-121",
"CWE-124",
"CWE-126",
"CWE-127",
"CWE-805",
"CWE-119",
"CWE-123",
"CWE-125",
"CWE-129"
],
"ARR39-C": [
"CWE-468"
],
"CON05-C": [
"CWE-557",
"CWE-662"
],
"CON06-C": [
"CWE-667"
],
"CON07-C": [
"CWE-366",
"CWE-413",
"CWE-567",
"CWE-667"
],
"CON08-C": [
"CWE-362",
"CWE-366",
"CWE-662"
],
"CON31-C": [
"CWE-667"
],
"CON33-C": [
"CWE-330",
"CWE-377",
"CWE-676"
],
"CON40-C": [
"CWE-366"
],
"CON43-C": [
"CWE-366"
],
"CON50-C": [
"CWE-667"
],
"DCL10-C": [
"CWE-628"
],
"DCL30-C": [
"CWE-562"
],
"ENV01-C": [
"CWE-119",
"CWE-123",
"CWE-125"
],
"ENV02-C": [
"CWE-462",
"CWE-807"
],
"ENV03-C": [
"CWE-78",
"CWE-88",
"CWE-426",
"CWE-471",
"CWE-807"
],
"ENV32-C": [
"CWE-705"
],
"ENV33-C": [
"CWE-88",
"CWE-676",
"CWE-78"
],
"ERR00-C": [
"CWE-391",
"CWE-544"
],
"ERR04-C": [
"CWE-705"
],
"ERR07-C": [
"CWE-20",
"CWE-79",
"CWE-89",
"CWE-91",
"CWE-94",
"CWE-114",
"CWE-601",
"CWE-676"
],
"ERR30-C": [
"CWE-456",
"CWE-248"
],
"ERR33-C": [
"CWE-252",
"CWE-253",
"CWE-391"
],
"ERR34-C": [
"CWE-676",
"CWE-758",
"CWE-20",
"CWE-391"
],
"EXP02-C": [
"CWE-768"
],
"EXP05-C": [
"CWE-704"
],
"EXP08-C": [
"CWE-468"
],
"EXP09-C": [
"CWE-805"
],
"EXP12-C": [
"CWE-754"
],
"EXP15-C": [
"CWE-480"
],
"EXP16-C": [
"CWE-480",
"CWE-482"
],
"EXP30-C": [
"CWE-758"
],
"EXP33-C": [
"CWE-456",
"CWE-457",
"CWE-758",
"CWE-908",
"CWE-119",
"CWE-676",
"CWE-665",
"CWE-123",
"CWE-824"
],
"EXP34-C": [
"CWE-476",
"CWE-690",
"CWE-252"
],
"EXP37-C": [
"CWE-628",
"CWE-685",
"CWE-686"
],
"EXP39-C": [
"CWE-119",
"CWE-125",
"CWE-704",
"CWE-123",
"CWE-188"
],
"EXP45-C": [
"CWE-480",
"CWE-481",
"CWE-569"
],
"EXP46-C": [
"CWE-480",
"CWE-569"
],
"FIO01-C": [
"CWE-73",
"CWE-367",
"CWE-676"
],
"FIO02-C": [
"CWE-22",
"CWE-23",
"CWE-28",
"CWE-40",
"CWE-41",
"CWE-59",
"CWE-73"
],
"FIO05-C": [
"CWE-37",
"CWE-38",
"CWE-39",
"CWE-62",
"CWE-64",
"CWE-65"
],
"FIO06-C": [
"CWE-276",
"CWE-279",
"CWE-732"
],
"FIO15-C": [
"CWE-379",
"CWE-552"
],
"FIO21-C": [
"CWE-379"
],
"FIO22-C": [
"CWE-403",
"CWE-404",
"CWE-770"
],
"FIO24-C": [
"CWE-362",
"CWE-675"
],
"FIO30-C": [
"CWE-134",
"CWE-20"
],
"FIO34-C": [
"CWE-197"
],
"FIO37-C": [
"CWE-241"
],
"FIO39-C": [
"CWE-664"
],
"FIO42-C": [
"CWE-404",
"CWE-459",
"CWE-772",
"CWE-773",
"CWE-775",
"CWE-403",
"CWE-771"
],
"FIO47-C": [
"CWE-686",
"CWE-685",
"CWE-134"
],
"FLP03-C": [
"CWE-369"
],
"FLP06-C": [
"CWE-681",
"CWE-682"
],
"FLP32-C": [
"CWE-682",
"CWE-391"
],
"FLP34-C": [
"CWE-681",
"CWE-197",
"CWE-195"
],
"INT02-C": [
"CWE-192",
"CWE-197"
],
"INT05-C": [
"CWE-192",
"CWE-197"
],
"INT07-C": [
"CWE-682"
],
"INT10-C": [
"CWE-682",
"CWE-129"
],
"INT13-C": [
"CWE-682"
],
"INT15-C": [
"CWE-681"
],
"INT18-C": [
"CWE-681",
"CWE-190"
],
"INT30-C": [
"CWE-190",
"CWE-131",
"CWE-191",
"CWE-680"
],
"INT31-C": [
"CWE-192",
"CWE-197",
"CWE-681",
"CWE-704",
"CWE-195",
"CWE-194",
"CWE-20"
],
"INT32-C": [
"CWE-190",
"CWE-191",
"CWE-680",
"CWE-20"
],
"INT33-C": [
"CWE-369",
"CWE-682"
],
"INT34-C": [
"CWE-682",
"CWE-758"
],
"INT36-C": [
"CWE-587",
"CWE-704",
"CWE-758",
"CWE-119",
"CWE-466"
],
"MEM00-C": [
"CWE-415",
"CWE-416"
],
"MEM01-C": [
"CWE-415",
"CWE-416"
],
"MEM03-C": [
"CWE-226",
"CWE-244"
],
"MEM04-C": [
"CWE-687"
],
"MEM06-C": [
"CWE-591",
"CWE-528"
],
"MEM07-C": [
"CWE-190",
"CWE-128"
],
"MEM10-C": [
"CWE-20",
"CWE-79",
"CWE-89",
"CWE-91",
"CWE-94",
"CWE-114",
"CWE-601"
],
"MEM11-C": [
"CWE-770"
],
"MEM30-C": [
"CWE-416",
"CWE-672",
"CWE-666",
"CWE-758",
"CWE-415",
"CWE-456"
],
"MEM31-C": [
"CWE-401",
"CWE-404",
"CWE-459",
"CWE-771",
"CWE-772"
],
"MEM33-C": [
"CWE-401"
],
"MEM34-C": [
"CWE-590"
],
"MEM35-C": [
"CWE-131",
"CWE-680",
"CWE-789",
"CWE-467",
"CWE-120"
],
"MSC04-C": [
"CWE-674"
],
"MSC07-C": [
"CWE-561"
],
"MSC12-C": [
"CWE-398",
"CWE-561"
],
"MSC13-C": [
"CWE-563"
],
"MSC30-C": [
"CWE-327",
"CWE-330",
"CWE-338",
"CWE-676"
],
"MSC32-C": [
"CWE-327",
"CWE-330",
"CWE-331"
],
"MSC37-C": [
"CWE-758"
],
"MSC41-C": [
"CWE-259",
"CWE-798"
],
"MSC42-C": [
"CWE-327",
"CWE-328"
],
"POS01-C": [
"CWE-59",
"CWE-362",
"CWE-367"
],
"POS02-C": [
"CWE-250",
"CWE-272"
],
"POS34-C": [
"CWE-252",
"CWE-253",
"CWE-391"
],
"POS35-C": [
"CWE-363",
"CWE-764"
],
"POS36-C": [
"CWE-696"
],
"POS37-C": [
"CWE-273"
],
"POS48-C": [
"CWE-667"
],
"POS51-C": [
"CWE-764"
],
"POS52-C": [
"CWE-557"
],
"POS54-C": [
"CWE-252",
"CWE-253",
"CWE-391"
],
"POS55-C": [
"CWE-666"
],
"PRE09-C": [
"CWE-684"
],
"SIG00-C": [
"CWE-662"
],
"SIG30-C": [
"CWE-479"
],
"SIG31-C": [
"CWE-364",
"CWE-662",
"CWE-828"
],
"SIG34-C": [
"CWE-364",
"CWE-479"
],
"STR02-C": [
"CWE-88",
"CWE-78"
],
"STR03-C": [
"CWE-170",
"CWE-464"
],
"STR31-C": [
"CWE-119",
"CWE-120",
"CWE-123",
"CWE-124",
"CWE-125",
"CWE-126",
"CWE-127",
"CWE-676",
"CWE-122",
"CWE-121",
"CWE-193"
],
"STR32-C": [
"CWE-119",
"CWE-123",
"CWE-125",
"CWE-170"
],
"STR34-C": [
"CWE-704"
],
"STR37-C": [
"CWE-704",
"CWE-686",
"CWE-683"
],
"WIN02-C": [
"CWE-250",
"CWE-272"
],
"WIN04-C": [
"CWE-311",
"CWE-319"
],
"WIN05-C": [
"CWE-272",
"CWE-428"
]
},
"cwe_to_rules": {
"CWE-114": [
"ERR07-C",
"MEM10-C"
],
"CWE-119": [
"ARR00-C",
"ARR30-C",
"ARR32-C",
"ARR38-C",
"ENV01-C",
"EXP33-C",
"EXP39-C",
"INT36-C",
"STR31-C",
"STR32-C"
],
"CWE-120": [
"ARR30-C",
"MEM35-C",
"STR31-C"
],
"CWE-121": [
"ARR30-C",
"ARR38-C",
"STR31-C"
],
"CWE-122": [
"ARR30-C",
"STR31-C"
],
"CWE-123": [
"ARR00-C",
"ARR30-C",
"ARR38-C",
"ENV01-C",
"EXP33-C",
"EXP39-C",
"STR31-C",
"STR32-C"
],
"CWE-124": [
"ARR30-C",
"ARR38-C",
"STR31-C"
],
"CWE-125": [
"ARR00-C",
"ARR30-C",
"ARR38-C",
"ENV01-C",
"EXP39-C",
"STR31-C",
"STR32-C"
],
"CWE-126": [
"ARR30-C",
"ARR38-C",
"STR31-C"
],
"CWE-127": [
"ARR30-C",
"ARR38-C",
"STR31-C"
],
"CWE-128": [
"MEM07-C"
],
"CWE-129": [
"ARR00-C",
"ARR30-C",
"ARR32-C",
"ARR38-C",
"INT10-C"
],
"CWE-131": [
"INT30-C",
"MEM35-C"
],
"CWE-134": [
"FIO30-C",
"FIO47-C"
],
"CWE-170": [
"STR03-C",
"STR32-C"
],
"CWE-188": [
"ARR32-C",
"EXP39-C"
],
"CWE-190": [
"INT18-C",
"INT30-C",
"INT32-C",
"MEM07-C"
],
"CWE-191": [
"INT30-C",
"INT32-C"
],
"CWE-192": [
"API07-C",
"INT02-C",
"INT05-C",
"INT31-C"
],
"CWE-193": [
"STR31-C"
],
"CWE-194": [
"INT31-C"
],
"CWE-195": [
"FLP34-C",
"INT31-C"
],
"CWE-197": [
"FIO34-C",
"FLP34-C",
"INT02-C",
"INT05-C",
"INT31-C"
],
"CWE-20": [
"API00-C",
"ARR30-C",
"ERR07-C",
"ERR34-C",
"FIO30-C",
"INT31-C",
"INT32-C",
"MEM10-C"
],
"CWE-22": [
"FIO02-C"
],
"CWE-226": [
"MEM03-C"
],
"CWE-227": [
"API07-C"
],
"CWE-23": [
"FIO02-C"
],
"CWE-241": [
"FIO37-C"
],
"CWE-244": [
"MEM03-C"
],
"CWE-248": [
"ERR30-C"
],
"CWE-250": [
"POS02-C",
"WIN02-C"
],
"CWE-252": [
"ERR33-C",
"EXP34-C",
"POS34-C",
"POS54-C"
],
"CWE-253": [
"ERR33-C",
"POS34-C",
"POS54-C"
],
"CWE-259": [
"MSC41-C"
],
"CWE-272": [
"POS02-C",
"WIN02-C",
"WIN05-C"
],
"CWE-273": [
"POS37-C"
],
"CWE-276": [
"FIO06-C"
],
"CWE-279": [
"FIO06-C"
],
"CWE-28": [
"FIO02-C"
],
"CWE-311": [
"WIN04-C"
],
"CWE-319": [
"WIN04-C"
],
"CWE-327": [
"MSC30-C",
"MSC32-C",
"MSC42-C"
],
"CWE-328": [
"MSC42-C"
],
"CWE-330": [
"CON33-C",
"MSC30-C",
"MSC32-C"
],
"CWE-331": [
"MSC32-C"
],
"CWE-338": [
"MSC30-C"
],
"CWE-362": [
"CON08-C",
"FIO24-C",
"POS01-C"
],
"CWE-363": [
"POS35-C"
],
"CWE-364": [
"SIG31-C",
"SIG34-C"
],
"CWE-366": [
"CON07-C",
"CON08-C",
"CON40-C",
"CON43-C"
],
"CWE-367": [
"FIO01-C",
"POS01-C"
],
"CWE-369": [
"FLP03-C",
"INT33-C"
],
"CWE-37": [
"FIO05-C"
],
"CWE-377": [
"CON33-C"
],
"CWE-379": [
"FIO15-C",
"FIO21-C"
],
"CWE-38": [
"FIO05-C"
],
"CWE-39": [
"FIO05-C"
],
"CWE-391": [
"ERR00-C",
"ERR33-C",
"ERR34-C",
"FLP32-C",
"POS34-C",
"POS54-C"
],
"CWE-394": [
"ARR30-C"
],
"CWE-398": [
"MSC12-C"
],
"CWE-40": [
"FIO02-C"
],
"CWE-401": [
"MEM31-C",
"MEM33-C"
],
"CWE-403": [
"FIO22-C",
"FIO42-C"
],
"CWE-404": [
"FIO22-C",
"FIO42-C",
"MEM31-C"
],
"CWE-41": [
"FIO02-C"
],
"CWE-413": [
"CON07-C"
],
"CWE-415": [
"MEM00-C",
"MEM01-C",
"MEM30-C"
],
"CWE-416": [
"MEM00-C",
"MEM01-C",
"MEM30-C"
],
"CWE-426": [
"ENV03-C"
],
"CWE-428": [
"WIN05-C"
],
"CWE-456": [
"ERR30-C",
"EXP33-C",
"MEM30-C"
],
"CWE-457": [
"EXP33-C"
],
"CWE-459": [
"FIO42-C",
"MEM31-C"
],
"CWE-462": [
"ENV02-C"
],
"CWE-464": [
"STR03-C"
],
"CWE-466": [
"INT36-C"
],
"CWE-467": [
"ARR01-C",
"MEM35-C"
],
"CWE-468": [
"ARR39-C",
"EXP08-C"
],
"CWE-469": [
"ARR36-C"
],
"CWE-471": [
"ENV03-C"
],
"CWE-476": [
"API00-C",
"EXP34-C"
],
"CWE-479": [
"SIG30-C",
"SIG34-C"
],
"CWE-480": [
"EXP15-C",
"EXP16-C",
"EXP45-C",
"EXP46-C"
],
"CWE-481": [
"EXP45-C"
],
"CWE-482": [
"EXP16-C"
],
"CWE-528": [
"MEM06-C"
],
"CWE-544": [
"ERR00-C"
],
"CWE-552": [
"FIO15-C"
],
"CWE-557": [
"CON05-C",
"POS52-C"
],
"CWE-561": [
"MSC07-C",
"MSC12-C"
],
"CWE-562": [
"DCL30-C"
],
"CWE-563": [
"MSC13-C"
],
"CWE-567": [
"CON07-C"
],
"CWE-569": [
"ARR01-C",
"EXP45-C",
"EXP46-C"
],
"CWE-587": [
"INT36-C"
],
"CWE-59": [
"FIO02-C",
"POS01-C"
],
"CWE-590": [
"API07-C",
"MEM34-C"
],
"CWE-591": [
"MEM06-C"
],
"CWE-601": [
"ERR07-C",
"MEM10-C"
],
"CWE-62": [
"FIO05-C"
],
"CWE-628": [
"DCL10-C",
"EXP37-C"
],
"CWE-64": [
"FIO05-C"
],
"CWE-65": [
"FIO05-C"
],
"CWE-662": [
"CON05-C",
"CON08-C",
"SIG00-C",
"SIG31-C"
],
"CWE-664": [
"FIO39-C"
],
"CWE-665": [
"ARR02-C",
"EXP33-C"
],
"CWE-666": [
"MEM30-C",
"POS55-C"
],
"CWE-667": [
"CON06-C",
"CON07-C",
"CON31-C",
"CON50-C",
"POS48-C"
],
"CWE-672": [
"MEM30-C"
],
"CWE-674": [
"MSC04-C"
],
"CWE-675": [
"FIO24-C"
],
"CWE-676": [
"CON33-C",
"ENV33-C",
"ERR07-C",
"ERR34-C",
"EXP33-C",
"FIO01-C",
"MSC30-C",
"STR31-C"
],
"CWE-680": [
"INT30-C",
"INT32-C",
"MEM35-C"
],
"CWE-681": [
"FLP06-C",
"FLP34-C",
"INT15-C",
"INT18-C",
"INT31-C"
],
"CWE-682": [
"FLP06-C",
"FLP32-C",
"INT07-C",
"INT10-C",
"INT13-C",
"INT33-C",
"INT34-C"
],
"CWE-683": [
"STR37-C"
],
"CWE-684": [
"PRE09-C"
],
"CWE-685": [
"EXP37-C",
"FIO47-C"
],
"CWE-686": [
"API07-C",
"EXP37-C",
"FIO47-C",
"STR37-C"
],
"CWE-687": [
"ARR30-C",
"MEM04-C"
],
"CWE-690": [
"EXP34-C"
],
"CWE-696": [
"POS36-C"
],
"CWE-704": [
"API07-C",
"EXP05-C",
"EXP39-C",
"INT31-C",
"INT36-C",
"STR34-C",
"STR37-C"
],
"CWE-705": [
"ENV32-C",
"ERR04-C"
],
"CWE-73": [
"FIO01-C",
"FIO02-C"
],
"CWE-732": [
"FIO06-C"
],
"CWE-754": [
"API04-C",
"EXP12-C"
],
"CWE-758": [
"ARR32-C",
"ERR34-C",
"EXP30-C",
"EXP33-C",
"INT34-C",
"INT36-C",
"MEM30-C",
"MSC37-C"
],
"CWE-761": [
"API07-C"
],
"CWE-762": [
"API07-C"
],
"CWE-764": [
"POS35-C",
"POS51-C"
],
"CWE-768": [
"EXP02-C"
],
"CWE-770": [
"FIO22-C",
"MEM11-C"
],
"CWE-771": [
"FIO42-C",
"MEM31-C"
],
"CWE-772": [
"FIO42-C",
"MEM31-C"
],
"CWE-773": [
"FIO42-C"
],
"CWE-775": [
"FIO42-C"
],
"CWE-78": [
"ENV03-C",
"ENV33-C",
"STR02-C"
],
"CWE-783": [
"ARR01-C"
],
"CWE-786": [
"ARR30-C"
],
"CWE-789": [
"ARR30-C",
"MEM35-C"
],
"CWE-79": [
"ERR07-C",
"MEM10-C"
],
"CWE-798": [
"MSC41-C"
],
"CWE-805": [
"ARR38-C",
"EXP09-C"
],
"CWE-807": [
"ENV02-C",
"ENV03-C"
],
"CWE-824": [
"EXP33-C"
],
"CWE-828": [
"SIG31-C"
],
"CWE-843": [
"API07-C"
],
"CWE-88": [
"ENV03-C",
"ENV33-C",
"STR02-C"
],
"CWE-89": [
"ERR07-C",
"MEM10-C"
],
"CWE-908": [
"EXP33-C"
],
"CWE-91": [
"ERR07-C",
"MEM10-C"
],
"CWE-94": [
"ERR07-C",
"MEM10-C"
]
},
"stats": {
"toml_count": 291,
"rules_with_cwe": 125,
"unique_cwes": 154
}
}